How are hackers fooling these tech-savvy Gmail users?

As Maunder wrote, “The way the attackworks is that an attacker will send an email to your Gmail account. That email may come from someone you know who has had their account hacked using this technique.”

The fakeprompt typically lives at the shady URL below.

Once you sign into this fake form, hackers have compromised your account and have likely initiated a new attack on your contacts.

As one hacker commented on Hacker News, “The attackers log in to your account immediately once they get the credentials, and they use one of your actual attachments, along with one of your actual subject lines, and send it to people in your contact list.”

“For example, they went into one students account, pulled an attachment with an athletic team practice schedule, generated the screenshot, and then paired that with a subject line that was tangentially related, and emailed it to the other members of the athletic team.